Kraken Security Labs has revealed several security risks associated with a commonly used line of Bitcoin ATMs (General Bytes BATMtwo) that are configured with the same default admin QR code.
Kraken also discovered that “many common security features were lacking” when it comes to software. It was possible to gain full access to the user interface by attaching a USB keyboard to the BATMtwo. In theory, this would enable potential attackers to install applications, copy files, or even send private keys to the attacker from the device.
A series of solutions for both users and operators of Bitcoin ATMs have been provided by Kraken. Users are advised to use only ATMs installed in trustworthy stores, and also ensure that it has “perimeter protections” like surveillance cameras.
As for owners and operators of General Bytes’ Bitcoin ATMs, Kraken recommends changing the default QR admin code, keeping it in a location with security controls, and following General Bytes’ “best practices.”
PS. Please filled the comment below and share your opinion.
More Info email@example.com